home

Digital Power Station.exe

Digital Power Station

Bongiovi Acoustics, LLC

The executable Digital Power Station.exe has been detected as malware by 12 anti-virus scanners. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time.
Publisher:
Bongiovi Acoustics  (signed by Bongiovi Acoustics, LLC)

Product:
Digital Power Station

Version:
1.3.0a1

MD5:
59c894351232b9f8f7e3a88083006f18

SHA-1:
efb35196725691c7357059025cddeff42dea07e0

SHA-256:
a1083be407de998228e49733f5f56e7757cd6354b3ae90c54b7c0efc195eff9b

Scanner detections:
12 / 68

Status:
Malware

Analysis date:
5/3/2024 5:57:38 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Sality
160518-2

AVG
Win32/Tanatos.M
2015.0.4568

Dr.Web
Win32.Sector.16
9.0.1.05190

Emsisoft Anti-Malware
Win32.Sality.OG
16.05.19

ESET NOD32
Win32/Sality.NAU virus
8.0.319.0

F-Prot
W32/Sality.AK
4.6.5.141

F-Secure
Win32.Sality.OG
5.15.96

Kaspersky
Virus.Win32.Sality
15.0.0.562

Microsoft Security Essentials
Threat.Undefined
1.219.2193.0

Norman
Win32.Sality.OG
19.05.2016 05:17:13

Sophos
Virus 'Mal/Sality-B'
5.23

VIPRE Antivirus
Threat.416209
49494

File size:
5.7 MB (5,979,648 bytes)

Product version:
1.3.0a1

Copyright:
(c) Bongiovi Acoustics 2013. All rights reserved.

Original file name:
Digital Power Station.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\bongiovi acoustics\digital power station\digital power station.exe

Digital Signature
Signed by:
Bongiovi Acoustics, LLC

Authority:
VeriSign, Inc.

Valid from:
3/5/2014 2:00:00 AM

Valid to:
6/4/2016 2:59:59 AM

Subject:
CN="Bongiovi Acoustics, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Bongiovi Acoustics, LLC", L=Port Saint Lucie, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4A83D40D60C9D275DF944F8D867E5F38

File PE Metadata
Compilation timestamp:
11/13/1997 2:16:24 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
98304:+6vixlCVPeF25dOCITSsfd7DkgYPXEhQF9NBwf9hxRVVK+F/G6QzvjoqsKfZ3a0F:+WiQj5wBdfkgYPtFfuXx7c+NntEZ32p0

Entry address:
0x5B06A7

Entry point:
60, E8, 01, 00, 00, 00, 7A, 56, 0F, AC, CE, 25, 0F, BA, FF, F5, 81, D6, C5, 74, 67, 8E, B9, 04, B7, 9E, E9, 58, 3A, C6, 85, C3, 86, E7, 6A, DC, E8, 71, 02, 00, 00, 58, 58, 33, D6, 0F, AC, FD, D5, C1, D1, EE, 0F, BA, E9, 97, 0F, BA, E9, E7, 74, 11, 29, F2, 0F, AB, C1, F7, C2, 87, 2E, 39, 18, 87, DD, 87, DD, 31, CB, 81, C0, 10, B8, 2E, 00, 0F, CB, 81, E8, BD, 9E, 2E, 00, 0F, A4, C1, 17, 81, E1, 67, 8E, 19, 78, 31, CB, 81, E1, 07, AE, B9, 98, 85, EF, 50, 89, CB, 85, EF, 0F, BB, D3, 85, EF, 85, EF, 59, 0F, AF...
 
[+]

Packer / compiler:
ASPack v1.08.04

Code size:
1.9 MB (1,991,168 bytes)

Scheduled Task
Task name:
At1

Path:
C:\WINDOWS\Tasks\At1.job

Trigger:
Daily (Runs daily at 20:31)

Description:
Created by NetScheduleJobAdd.


Remove Digital Power Station.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.